Vulnerabilities > CVE-2023-2360 - Unspecified vulnerability in Acronis Cyber Infrastructure

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

acronis

NVD

Published: 2023-04-28

Updated: 2023-05-05

Summary

Sensitive information disclosure due to CORS misconfiguration. The following products are affected: Acronis Cyber Infrastructure (ACI) before build 5.2.0-135.

Vulnerable Configurations

Part	Description	Count
Application	Acronis Acronis Cyber Infrastructure - Acronis Cyber Infrastructure 3.0.0-1906 Acronis Cyber Infrastructure 3.0.1-54 Acronis Cyber Infrastructure 3.0.1-59 Acronis Cyber Infrastructure 3.0.2-46 Acronis Cyber Infrastructure 3.0.3-16 Acronis Cyber Infrastructure 3.0.3-27 Acronis Cyber Infrastructure 3.0.4-63 Acronis Cyber Infrastructure 3.0.5-63 Acronis Cyber Infrastructure 3.0.5-64 Acronis Cyber Infrastructure 3.0.5-69 Acronis Cyber Infrastructure 3.0.5-72 Acronis Cyber Infrastructure 3.5.0-812 Acronis Cyber Infrastructure 3.5.1-43 Acronis Cyber Infrastructure 3.5.1-45 Acronis Cyber Infrastructure 3.5.1-48 Acronis Cyber Infrastructure 3.5.1-51 Acronis Cyber Infrastructure 3.5.2-34 Acronis Cyber Infrastructure 3.5.2-35 Acronis Cyber Infrastructure 3.5.2-39 Acronis Cyber Infrastructure 3.5.3-18 Acronis Cyber Infrastructure 3.5.3-22 Acronis Cyber Infrastructure 3.5.3-25 Acronis Cyber Infrastructure 3.5.4-24 Acronis Cyber Infrastructure 3.5.4-26 Acronis Cyber Infrastructure 3.5.4-28 Acronis Cyber Infrastructure 3.5.5-25 Acronis Cyber Infrastructure 3.5.5-41 Acronis Cyber Infrastructure 3.5.5-47 Acronis Cyber Infrastructure 4.0.0-734 Acronis Cyber Infrastructure 4.0.0-737 Acronis Cyber Infrastructure 4.0.0-741 Acronis Cyber Infrastructure 4.0.1-44 Acronis Cyber Infrastructure 4.0.1-48 Acronis Cyber Infrastructure 4.0.1-49 Acronis Cyber Infrastructure 4.0.1-52 Acronis Cyber Infrastructure 4.0.1-55 Acronis Cyber Infrastructure 4.0.1-57 Acronis Cyber Infrastructure 4.5.0-284 Acronis Cyber Infrastructure 4.5.0-289 Acronis Cyber Infrastructure 4.5.1-23 Acronis Cyber Infrastructure 4.5.1-31 Acronis Cyber Infrastructure 4.5.1-42 Acronis Cyber Infrastructure 4.5.2-10 Acronis Cyber Infrastructure 4.6.0-208 Acronis Cyber Infrastructure 4.6.0-209 Acronis Cyber Infrastructure 4.6.0-213 Acronis Cyber Infrastructure 4.6.1-42 Acronis Cyber Infrastructure 4.6.2-10 Acronis Cyber Infrastructure 4.6.2-22 Acronis Cyber Infrastructure 4.7.0-230 Acronis Cyber Infrastructure 4.7.0-234 Acronis Cyber Infrastructure 4.7.0-237 Acronis Cyber Infrastructure 4.7.1-29 Acronis Cyber Infrastructure 4.7.1-35 Acronis Cyber Infrastructure 4.7.1-36 Acronis Cyber Infrastructure 4.7.1-50 Acronis Cyber Infrastructure 4.7.1-53 Acronis Cyber Infrastructure 5.0.0-137 Acronis Cyber Infrastructure 5.0.0-140 Acronis Cyber Infrastructure 5.0.1-42 Acronis Cyber Infrastructure 5.0.1-53 Acronis Cyber Infrastructure 5.0.1-55 Acronis Cyber Infrastructure 5.0.1-57 Acronis Cyber Infrastructure 5.0.1-61 Acronis Cyber Infrastructure 5.1.0-206 Acronis Cyber Infrastructure 5.1.1 Acronis Cyber Infrastructure 5.1.1-61 Acronis Cyber Infrastructure 5.1.1-68 Acronis Cyber Infrastructure 5.1.1-71 Acronis Cyber Infrastructure 5.2.0	71

References

https://security-advisory.acronis.com/advisories/SEC-4215